CVE-2015-6314
CRITICALCisco Wireless Lan Controller Software - Authentication Bypass
Title source: ruleDescription
Cisco Wireless LAN Controller (WLC) devices with software 7.6.x, 8.0 before 8.0.121.0, and 8.1 before 8.1.131.0 allow remote attackers to change configuration settings via unspecified vectors, aka Bug ID CSCuw06153.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160113-wlc
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1034665
Scores
CVSS v3
9.8
EPSS
0.0298
EPSS Percentile
85.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (6)
cisco/wireless_lan_controller_software
8.0.72.140
cisco/wireless_lan_controller_software
8.0_base
cisco/wireless_lan_controller_software
8.1.0
cisco/wireless_lan_controller_software
8.1.104.37
cisco/wireless_lan_controller_software
8.1.111.0
cisco/wireless_lan_controller_software
8.1.122.0
Published
Jan 15, 2016
Tracked Since
Feb 18, 2026